Submissions

Date range button:

First seen:

Last seen:

No	Date	Request	Urls	Hosts	Score	Zero	VT	Player
9796	2021-07-08 09:36	ConsoleApp5.exe 7db2c2cb8780cfbe64ac49beb00f27f2 AgentTesla RAT browser info stealer Generic Malware Google Chrome User Data Antivirus Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection Downloader AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself suspicious process WriteConsoleW Windows ComputerName DNS Cryptographic key DDNS crashed keylogger		3	16.2	M	36	ZeroCERT

9797	2021-07-08 09:36	cryptq.exe 616ae69cbf101d5b170846c3fd63a930 Gen1 Gen2 UPX PE File OS Processor Check PE32 DLL VirusTotal Email Client Info Stealer Malware PDB MachineGuid Malicious Traffic Check memory buffers extracted Creates executable files unpack itself Windows utilities Collect installed applications suspicious process AppData folder installed browsers check Ransomware Windows Browser Email ComputerName DNS	4 Keyword trend analysis	3	9.2	M	27	ZeroCERT

9798	2021-07-08 09:38	IMG_10791000016ppt.exe 0a696696f5ba6bc4a05a20ccddc03781 RAT Generic Malware SMTP KeyLogger AntiDebug AntiVM PE File .NET EXE PE32 Browser Info Stealer FTP Client Info Stealer VirusTotal Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces VMware IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed	2 Keyword trend analysis	4	14.8	M	29	ZeroCERT

9799	2021-07-08 09:40	200.exe 7de9b4c2973c70b90ec57b8ebaafe360 PE File PE32 VirusTotal Malware PDB Windows crashed			3.2	M	41	ZeroCERT

9800	2021-07-08 09:42	config.exe 649e264be8f3e82828fb5e84466afedd AgentTesla RAT browser info stealer Generic Malware Google Chrome User Data Antivirus Socket Create Service Sniff Audio Escalate priviledges KeyLogger Code injection Downloader AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware powershell AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted Creates shortcut Creates executable files unpack itself suspicious process WriteConsoleW Windows ComputerName Cryptographic key crashed keylogger		2	13.6	M	39	ZeroCERT

9801	2021-07-08 09:45	Remittanc3.exe c1366c7e949f42c3708cf8a6b9f8b59e Generic Malware AntiDebug AntiVM PE File .NET EXE PE32 VirusTotal Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Windows DNS crashed	10 Keyword trend analysis Info http://www.amagev.club/dkao/ http://www.nigeriawomenawards.com/dkao/?uTCp=iWzfaewLLTJnQMPvdy871AT5FLqPnVAdCSP78r17ytQtyc4BseBkkQdgsS6sYXYuGYIgofwY&U8kx=9rGDCxGh6xBpR61 http://www.amagev.club/dkao/?uTCp=aesDQQjVnk1NplFjny38zOY2c5gOHCiyKviJ6lZu99HOBtJRCj0+iKRxq9F0iuetBDPWBsxJ&U8kx=9rGDCxGh6xBpR61 http://www.successfulhealthcoach.com/dkao/ http://www.nadiarosso.com/dkao/ http://www.nadiarosso.com/dkao/?uTCp=5rjZZIrDmf8HQT5SY+nDIB4GoGBDWQ2X3TTHXxMQpq94isiL42v++a4+dgXFbn9ypDWdd8VT&U8kx=9rGDCxGh6xBpR61 http://www.successfulhealthcoach.com/dkao/?uTCp=oafyDgTRlbeRqGLmBvvKDjtyhevRanROH1bEEpu+meVakeizwSEUg4snONZlkFKqZ9XiU1WZ&U8kx=9rGDCxGh6xBpR61 http://www.goodhey.com/dkao/?uTCp=kKKyE3J80xSjU8JLjpdTs7wNQiraEN87BcQif8T3VbN/JtW6xuqNZqhINOgXnR5tUcu1NjWy&U8kx=9rGDCxGh6xBpR61 http://www.goodhey.com/dkao/ http://www.nigeriawomenawards.com/dkao/	12 Info www.nigeriawomenawards.com(154.201.211.108) www.adrvew.com() www.amagev.club(172.67.144.246) www.successfulhealthcoach.com(103.21.8.203) www.goodhey.com(46.28.105.2) www.nadiarosso.com(185.224.137.126) 46.28.105.2 - mailcious 104.21.95.128 154.201.211.108 103.21.8.203 185.224.137.126 104.21.19.200	10.8	M	22	ZeroCERT

9802	2021-07-08 09:46	upl.txt 5522c21a05daf91658951bdf1c0e5271 Generic Malware PE File DLL OS Processor Check PE32 VirusTotal Malware PDB RWX flags setting unpack itself ComputerName			2.6	M	31	ZeroCERT

9803	2021-07-08 10:18	klfile.exe 9dc97eaed4e61901afc327ce9f122262 Raccoon Stealer Malicious Library PE File OS Processor Check PE32 VirusTotal Malware unpack itself			2.0	M	56	r0d

9804	2021-07-08 10:37	01100948010.exe 0824057fe93e4b00d209f41dbffddca3 Generic Malware SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File AutoRuns suspicious privilege Code Injection Check memory Checks debugger buffers extracted unpack itself malicious URLs Windows ComputerName Cryptographic key crashed			10.2			ZeroCERT

9805	2021-07-08 10:37	ETL_7841101234402.exe 46686739a6d4149e02a47d59372331d4 Generic Malware SMTP KeyLogger AntiDebug AntiVM .NET EXE PE32 PE File Browser Info Stealer FTP Client Info Stealer Email Client Info Stealer Malware AutoRuns suspicious privilege Code Injection Malicious Traffic Check memory Checks debugger buffers extracted unpack itself Check virtual network interfaces malicious URLs VMware IP Check Windows Browser Email ComputerName DNS Cryptographic key DDNS Software crashed keylogger	2 Keyword trend analysis	4	14.0			ZeroCERT

9806	2021-07-08 10:40	1609fbf0d6c26e---38596704027.p... c4d757196a348dbc813b65774a370dc3 VirusTotal Malware			0.6	M	13	ZeroCERT

9807	2021-07-08 10:40	160a502c86578e---nitimaf.pdf 60845bf123f505af4c8c9ead997b2b69 VirusTotal Malware			0.6	M	13	ZeroCERT

9808	2021-07-08 10:40	1608ec4d48408b---91102276291.p... 3122a3e39e2a3e1655ab7ae769ea1b92 Anti_VM VirusTotal Malware			0.6	M	14	ZeroCERT

9809	2021-07-08 10:54	autosubplayer.exe d8d97a7f479f8ae9f37458a520288cbd PE32 PE File DLL VirusTotal Malware Check memory Creates executable files unpack itself AppData folder			2.6	M	12	ZeroCERT

9810	2021-07-08 11:03	air+france+klm+annual+report+2... 3e5700315f6dad1bb3af6c4baf1c4969 Raccoon Stealer Malicious Library PE32 OS Processor Check PE File VirusTotal Malware PDB unpack itself Windows Remote Code Execution crashed			2.8		23	guest